In an example embodiment, an automated banking machine is provided which may comprise a trusted platform (TP) including a trusted platform module (TPM) in a computer of the machine. Through use of the TP, the machine may perform cryptographic functions for use in enabling the machine to perform transaction functions for users. The machine may be operative to use the TP to securely store secret keys, or other critical information in sealed storage on a data store of the machine. The TP may also be used to measure, attest, and verify transaction function devices, hardware devices, firmware, software, and/or other components of the machine prior to enabling the machine to function in an enabled mode. The TP may also be used to establish secure communication between components of the machine. The TP may also be used to perform key transfers between the machine and a host banking system.
Legal claims defining the scope of protection, as filed with the USPTO.
1. A tangible, non-transitory computer readable medium of instructions with instructions encoded thereon for execution by a processor, and when executed operable to: establish secure communications between a processor associated with an automated banking machine and a hardware device associated with the automated banking machine, wherein a trusted platform module (TPM) associated with the processor is employed to establish the secure communications; and perform a financial transaction, wherein performing the financial transaction involves an exchange of data via the secure communications established between the processor and the hardware device; wherein the hardware device is selected from a group consisting of a card reader, a cash dispenser, a cash accepter, and an encrypting personal identification number (PIN) pad (EPP).
2. The computer readable medium set forth in claim 1 , wherein the hardware device comprises a card reader; and wherein the instructions are operable to use the TPM to secure communications between the processor and the card reader.
3. The computer readable medium set forth in claim 2 , the instructions are further operable to receive card data read from a user card through operation of the card reader via the established secure communications.
4. The computer readable medium set forth in claim 2 , the instructions are further operable to receive encrypted card data read from a user card through operation of the card reader via the established secure communications.
5. The computer readable medium set forth in claim 4 , wherein the encrypted card data comprises an account number read from the user card.
6. The computer readable medium set forth in claim 5 , wherein the encrypted card data is encrypted with a symmetrical session key established by the TPM.
7. The computer readable medium set forth in claim 6 , wherein the instructions are further operable to communicate the symmetrical session key to the card reader.
8. The computer readable medium set forth in claim 5 , wherein the instructions are further operable to employ the TPM to establish secure communications with a host banking system.
9. The computer readable medium set forth in claim 8 , the instructions are further operable to send a message to the host banking system responsive to receiving the encrypted card data.
10. The computer readable medium instructions set forth in claim 2 , the instructions are further operable to send a command to the card reader to cause the card reader to operate.
11. The computer readable medium of instructions set forth in claim 10 , the instructions are further operable to receive a status message from the card reader, regarding the operation of the card reader.
12. The computer readable medium set forth in claim 2 , the instructions are further operable to carry out a key transport mechanism protocol which provides unilateral key transport of the session key to the card reader.
13. The computer readable medium set forth in claim 1 , wherein the hardware device comprises a cash dispenser.
14. The computer readable medium set forth in claim 1 , wherein the hardware device comprises a cash accepter.
15. The computer readable medium set forth in claim 1 , wherein the hardware device comprises an EPP.
16. The computer readable medium set forth in claim 1 , wherein the hardware device comprises an EPP and a display, the instructions are further operable to establish secure communications between the processor and the EPP and to establish secure communication between the processor and a display.
17. The computer readable medium set forth in claim 16 , the instructions are further operable to receive data via the secure link established between the EPP and the processor; and the instructions are further operable to forward data representative of the data received via the secure link established between the EPP and the processor to the display via the secure link established between the processor and the display.
18. The computer readable medium set forth in claim 17 , wherein the data received from the EPP comprises an amount of cash to withdraw.
19. The computer readable medium set forth in claim 17 , wherein the data received from the EPP comprises a PIN.
20. The computer readable medium set forth in claim 17 , wherein the data received from the EPP comprises data representative of a menu selection.
Cooperative Patent Classification codes for this invention. Click any code to explore related patents in that topic.
December 17, 2013
August 25, 2015
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.